Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/zU-GYYQqodpsnLD0AmPt-J-HGLU.roa
File: zU-GYYQqodpsnLD0AmPt-J-HGLU.roa (raw, json)
Hash identifier: Lgszd2jk2wF7HmV3RKcLX9cuPciMjuvwo9kV+Xuod0k=
Subject key identifier: CD:4F:86:61:84:2A:A1:DA:6C:9C:B0:F4:02:63:ED:F8:9F:87:18:B5
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 150A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zU-GYYQqodpsnLD0AmPt-J-HGLU.roa
Signing time: Tue 11 Feb 2025 23:44:16 +0000
ROA not before: Tue 11 Feb 2025 23:44:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 122.120.0.0/13 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5386 (0x150a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:16 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CD4F8661842AA1DA6C9CB0F40263EDF89F8718B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:75:ca:0c:27:42:b2:4a:0f:8d:d9:ef:05:30:
91:69:a7:0a:7d:40:bc:24:5d:a8:f8:ff:18:f2:2b:
9e:4f:b6:ab:e8:ae:ac:6c:93:43:c7:57:6c:80:c4:
87:c9:d5:23:f1:72:35:01:ec:7f:82:83:cf:36:78:
88:a5:d7:c8:f0:e2:0c:0a:f9:96:46:aa:a1:97:7a:
e7:13:0e:17:37:8d:91:9b:3a:33:a5:e0:aa:bf:04:
27:92:eb:df:c3:27:bb:79:09:28:3c:2f:c9:08:3c:
d7:f8:a8:7f:11:b8:b5:cc:e7:7e:06:93:e2:00:e1:
9c:69:80:f7:e8:8d:6b:d5:ff:d4:89:59:c4:3b:a6:
4b:d2:20:15:ad:99:f3:83:7d:cd:5d:67:86:05:1b:
38:2a:92:40:e1:92:7b:5e:80:8e:1e:db:17:13:ef:
21:a9:93:eb:9c:b3:16:e1:ea:9c:93:1c:14:1b:e8:
5c:4e:19:7c:57:2c:17:bd:ac:bc:b9:73:2a:69:b9:
43:d4:c7:7a:5f:37:bc:8b:cf:55:29:fc:19:4d:44:
8a:cc:83:ce:5e:b7:c7:82:8b:2d:10:41:10:4e:4f:
9c:91:3f:12:7f:51:66:04:f9:94:f9:1e:69:ac:92:
3d:96:75:51:4c:99:39:d3:a6:b2:07:c7:a5:d8:53:
25:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:4F:86:61:84:2A:A1:DA:6C:9C:B0:F4:02:63:ED:F8:9F:87:18:B5
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zU-GYYQqodpsnLD0AmPt-J-HGLU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.120.0.0/13
Signature Algorithm: sha256WithRSAEncryption
40:e4:ec:d2:cd:f2:51:75:9d:f2:88:4e:65:85:b7:a7:39:a2:
21:13:a9:ef:0c:c0:20:9f:e8:3b:a7:23:70:17:9b:52:d7:bb:
48:20:7b:d5:95:c6:bd:7d:e3:22:1e:f1:be:86:f4:cd:d6:dc:
75:4a:dd:db:29:08:7f:ac:82:75:8d:7f:11:5d:9d:80:5c:68:
80:6e:71:ad:c8:39:0a:8c:67:ab:38:0f:66:33:97:6b:7e:43:
3b:81:87:16:f6:cc:2f:f0:87:30:26:00:75:ce:b1:83:a9:e1:
6d:33:f8:40:1e:6a:0f:4d:37:40:c7:de:c8:62:a9:f5:3e:6f:
b6:e5:99:3f:39:7c:32:7d:b4:9e:b4:b5:98:0c:6e:30:0f:3e:
70:26:a2:55:a1:3e:8d:0e:d9:ef:40:50:a9:6f:2c:bf:4f:26:
5b:b7:03:31:61:22:f8:74:ff:5a:c5:48:09:92:ce:27:00:c4:
b4:be:7b:ca:86:2b:21:a6:08:df:0a:49:4f:20:fd:19:c7:83:
4c:f8:92:ee:3a:7f:96:53:f6:a0:7c:e6:c5:60:bd:a4:11:f9:
4d:d8:bc:e0:4b:32:15:f9:e7:23:0f:1d:67:a2:8c:4b:14:de:
b7:2c:08:25:72:3e:6b:f2:bc:b6:0a:fb:38:87:bd:29:e6:67:
75:0a:d8:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:25:08 2025 by rpki-client